CVSS: 10.0EPSS: 1%CPEs: 5EXPL: 0CVE-2006-0290
https://notcve.org/view.php?id=CVE-2006-0290
Unspecified vulnerability in Oracle Database Server 9.2.0.7, Application Server 9.0.4.2 and 10.1.2.1, Collaboration Suite Release 2, version 9.0.4.2 (Oracle9i), and E-Business Suite and Applications 11.5.10 has unspecified impact and attack vectors, as identified by Oracle Vuln# WF01 in the Oracle Workflow Cartridge component. • http://secunia.com/advisories/18493 http://secunia.com/advisories/18608 http://securitytracker.com/id?1015499 http://www.kb.cert.org/vuls/id/545804 http://www.oracle.com/technetwork/topics/security/cpujan2006-082403.html http://www.securityfocus.com/bid/16287 http://www.vupen.com/english/advisories/2006/0243 http://www.vupen.com/english/advisories/2006/0323 https://exchange.xforce.ibmcloud.com/vulnerabilities/24321 •
CVSS: 10.0EPSS: 1%CPEs: 10EXPL: 0CVE-2006-0282
https://notcve.org/view.php?id=CVE-2006-0282
Unspecified vulnerability in Oracle Database Server 8.1.7.4, 9.0.1.5, 9.0.1.5 FIPS, 9.2.0.7, and 10.1.0.5, Application Server 1.0.2.2, 9.0.4.2, and 10.1.2.0.2, and Collaboration Suite Release 2, version 9.0.4.2 (Oracle9i) has unspecified impact and attack vectors, as identified by Oracle Vuln# DBC01 in the Protocol Support component. • http://secunia.com/advisories/18493 http://secunia.com/advisories/18608 http://securitytracker.com/id?1015499 http://www.kb.cert.org/vuls/id/545804 http://www.oracle.com/technetwork/topics/security/cpujan2006-082403.html http://www.securityfocus.com/bid/16287 http://www.vupen.com/english/advisories/2006/0243 http://www.vupen.com/english/advisories/2006/0323 https://exchange.xforce.ibmcloud.com/vulnerabilities/24321 •
CVSS: 10.0EPSS: 1%CPEs: 2EXPL: 0CVE-2006-0274
https://notcve.org/view.php?id=CVE-2006-0274
Unspecified vulnerability in the Oracle Reports Developer component of Oracle Application Server 9.0.4.2 and 10.1.2.0.2 has unspecified impact and attack vectors, as identified by Oracle Vuln# REP03. • http://secunia.com/advisories/18493 http://secunia.com/advisories/18608 http://securitytracker.com/id?1015499 http://www.kb.cert.org/vuls/id/545804 http://www.oracle.com/technetwork/topics/security/cpujan2006-082403.html http://www.securityfocus.com/bid/16287 http://www.vupen.com/english/advisories/2006/0243 http://www.vupen.com/english/advisories/2006/0323 https://exchange.xforce.ibmcloud.com/vulnerabilities/24321 •
CVSS: 5.0EPSS: 46%CPEs: 1EXPL: 2CVE-2005-4550 – oracle Application server discussion forum portlet - Multiple Vulnerabilities
https://notcve.org/view.php?id=CVE-2005-4550
The PORTAL schema in Oracle Application Server (OracleAS) Discussion Forum Portlet allows remote attackers to obtain the source code for arbitrary JSP and other files via a df_next_page parameter with a trailing null byte (%00). • https://www.exploit-db.com/exploits/26972 http://marc.info/?l=full-disclosure&m=113532633229270&w=2 http://securityreason.com/securityalert/297 http://securitytracker.com/id?1015406 http://www.securityfocus.com/bid/16048 http://www.vupen.com/english/advisories/2005/3085 https://exchange.xforce.ibmcloud.com/vulnerabilities/23813 •
CVSS: 4.3EPSS: 3%CPEs: 1EXPL: 1CVE-2005-4549
https://notcve.org/view.php?id=CVE-2005-4549
Cross-site scripting (XSS) vulnerability in Oracle Application Server (OracleAS) Discussion Forum Portlet allows remote attackers to inject arbitrary web script or HTML via the (1) RowKeyValue parameter in the PORTAL schema; and the (2) title and (3) content input fields when creating an forum article. • http://marc.info/?l=full-disclosure&m=113532626203708&w=2 http://securityreason.com/securityalert/298 http://securitytracker.com/id?1015405 http://www.securityfocus.com/bid/16048 http://www.vupen.com/english/advisories/2005/3085 •